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DETAILED ACTION 

1. A Request for Continued Examination under 37 CFR 1.114, including the 
fee set forth in 37 CFR 1 .17(e), was filed in this application after final rejection. 
Since this application is eligible for continued examination under 37 CFR 1.114, 

♦ 

and the fee set forth in 37 CFR 1 .17(e) has been timely paid, the finality of the 
previous office action has been withdrawn pursuant to 37 CFR 1.114. 
Applicant's submission filed on 17 July 2007 has been entered and respectfully 
and carefully considered. 

2. As a result of the amendment, claims 1,11 and 21 have been amended. 
Therefore, claims 1-4, 6-14, 16-24 and 26-30 are currently pending in the present 

» 

application. 

EXAMINER'S AMENDMENT 

3. An examiner's amendment to the record appears below. Should the 
changes and/or additions be unacceptable to applicant, an amendment may be 
filed as provided by 37 CFR 1.312. To ensure consideration of such an 
amendment, it MUST be submitted no later than the payment of the issue fee. 

Authorization for this examiner's amendment was given in a telephone 
interview with Mr. Paul Kudirka on 29 August 2007. 

> Please cancel claims 7, 17 and 27 

> Please replace the claims as follows: 

1 . (Currently Amended) A method for secure key delivery for decrypting a . 

distribution archive file containing a plurality of digital content documents 
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■ 

at an unsecured site that receives a stream of distribution archive files 
from a publishing site, the method comprising: 

(a) at the publishing site, encrypting each digital content document with a 

key to generate encrypted document content; 

(b) at the publishing site, computing for each document a document 

identifier that is computed from, but cannot be derived solely from, 
the encrypted content of that documen t, wherein the document 
identifier is computed using a text string embedded in program 
code in the publishing site ; 

(c) at the publishing site, creating a list of document identifier and 

decryption key pairs; 

(d) at the publishing site, assembling the encrypted document content for 

each content document and the key pair list into a distribution 

t r 

archive file; 

(e) at the publishing site, encrypting the distribution archive file with a 

scheduled key unique to that distribution archive file and placing the 
encrypted distribution file on the stream; 

(f) at the unsecured site, selecting a distribution archive file from the 

stream; 

(g) at the unsecured site, extracting a scheduled key from the selected 

distribution archive file in the stream; 
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(h) at the unsecured site, using the extracted scheduled key to decrypt the 

t 

next subsequent distribution archive file in the stream following the 
selected distribution archive file; 

(i) removing the encrypted document content and the key pair list from the 

decrypted distribution archive file and storing them at the 
unsecured site; 

(j) selecting the distribution archive file decrypted in step (h) A and 
(k) repeating steps (g), (h), (i) and (j) for each distribution archive file in the 
stream. 

2. (Currently Amended) The method of claim 1 further comprising: 

(I) receiving a scheduled key at the unsecured site to decrypt the first distribution 

archive file in the stream from the publishing site. 

8. (Currently Amended) The method of claim 1 wherein step (g) comprises 

temporarily storing an extracted scheduled key in encrypted form. 

9. (Currently Amended) The method of claim 7-1_further comprising recomputing 

a document identifier at the unsecured site with a text string embedded in 
program code located at the unsecured site. 

■ 

1 1 . (Currently Amended) An apparatus for secure key delivery for decrypting a 
distribution archive file containing a plurality of digital content documents 



Application/Control Number: 1 0/61 5,278 Page 4 

Art Unit: 2135 

at an unsecured site that receives a stream of distribution archive files 
from a publishing site, the apparatus comprising: 

at the publishing site, an encryption engine that encrypts each 
digital content document with a key to generate encrypted document 
content; 

at the publishing site, an OID calculator that computes for each 
document a document identifier that is computed from, but cannot be 
derived solely from, the encrypted content of that documen t wherein the 
document identifier is computed using a text string embedded in program 
code in the publishing site ; 

at the publishing site, means for creating a list of document 
identifier and decryption key pairs; 

at the publishing site, means for assembling the encrypted 
document content for each content document and the key pair list into a 

» 

distribution archive; 

at the publishing site, means for encrypting the distribution archive 
file with a scheduled key unique to that distribution archive file; 

at the unsecured site, a key decryptor that extracts a scheduled key 
from each distribution archive file in the stream; 

means for temporarily storing the extracted scheduled key at the 
unsecured site; 

at the unsecured site, a decryption engine that uses the stored 
scheduled key to decrypt the next distribution archive file in the stream 
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following the distribution archive file from which the scheduled key was 
extracted; and 

a file system that removes the encrypted document content and the 
key pair list from the decrypted archive file and stores them at the 
unsecured site. 

19. (Currently Amended) The apparatus of claim 47-1 1 further comprising means 
for recomputing a document identifier with a text string embedded in 
program code located at the unsecured site. 

■ 

21 . (Currently Amended) A computer program product for secure key delivery for 
decrypting a distribution archive file containing a plurality of digital content 
files at an unsecured site that receives a stream of distribution archive files 
from a publishing site, the computer program product comprising a 

■ 

■ 

computer usable medium having computer readable program code 
thereon, including: 

program code at the publishing site, for encrypting each digital 
content document with a key to generate encrypted document content; 

program code at the publishing site, for computing for each 
document a document identifier that is computed from, but cannot be 
derived solely from, the encrypted content of that documen t, wherein the 
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document identifier is computed using a text string embedded in program 
code in the publishing site : 

program code at the publishing site, for creating a list of document 
identifier and decryption key pairs; 

program code at the publishing site, for assembling the encrypted 
document content for each content document and the key pair list into a 

■ 

distribution archive file; and 

program code at the publishing site, for encrypting the distribution 
archive file with a scheduled key unique to that distribution archive file and 
for placing the encrypted distribution file on the stream; 

program code at the unsecured site for extracting a scheduled key 
from each distribution archive file in the stream; 

program code at the unsecured site for temporarily storing the 
extracted scheduled key; 

program code at the unsecured site for using the stored scheduled 
key to decrypt the next distribution archive file in the stream following the 
distribution archive file from which the scheduled key was extracted; and 

program code for removing the encrypted document content and 
the key pair list from the decrypted archive file and for storing them at the 
unsecured site. 
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29. (Currently Amended) The computer program product of claim 28 21 further 
comprising program code for recomputing a document identifier with a text string 
embedded in program code located at the unsecured site. 

Allowable Subject Matter 

* 

4. Claims 1-4, 6, 8-14, 16, 18-24, 26 and 28-30 are allowed. 

Contact Information 

Any inquiry concerning this communication or earlier communications from 
the examiner should be directed to April Y. Shan whose telephone number is 
(571) 270-1014. The examiner can normally be reached on Monday - Friday, 
8:00 a.m. - 5:00 p.m., EST. 

If attempts to reach the examiner by telephone are unsuccessful, the 
examiner's supervisor, Kim Y. Vu can be reached on (571) 272-3859. The fax 
phone number for the organization where this application or proceeding is 
assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from 
the Patent Application Information Retrieval (PAIR) system. Status information 
for published applications may be obtained from either Private PAIR or Public 
PAIR. Status information for unpublished applications is available through 
Private PAIR only. For more information about the PAIR system, see http://pair- 
direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll- 
free). If you would like assistance from a USPTO Customer Service 
Representative or access to the automated information system, call 800-786- 
9199 (IN USA OR CANADA) or 571-272-1000. . 



30 August 2007 
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